What's Your IT Question?

Want to know more about this topic or about us? Contact us!

All posts in Office 365

The 5 Most-Wanted Threatpost Stories of 2020

A look back at what was hot with readers — offering a snapshot of the security stories that were most top-of-mind for security professionals and consumers throughout the year. As 2020 draws to a close, it’s clear that work-from-home security, ransomware, COVID-19-themed social engineering and attacks by nation-states will go . . . Read more

Microsoft Office 365 Credentials Under Attack By Fax ‘Alert’ Emails

Emails from legitimate, compromised accounts are being sent to numerous enterprise employees with the aim of stealing their O365 credentials. Researchers are warning of a coordinated phishing attack that targeted “numerous” enterprise organizations last week. The attackers behind the attack leveraged hundreds of compromised, legitimate email accounts in order to . . . Read more

Spearphishing Attack Spoofs Microsoft.com to Target 200M Office 365 Users

It remains unknown as to why Microsoft is allowing a spoof of their very own domain against their own email infrastructure. A  spearphishing attack is spoofing Microsoft.com to target 200 million Microsoft Office 365 users in a number of key vertical markets, including financial services, healthcare, manufacturing and utility providers. . . . Read more

Microsoft Revamps ‘Invasive’ M365 Feature After Privacy Backlash

The Microsoft 365 tool that tracked employee usage of applications like Outlook, Skype and Teams was widely condemned by privacy experts. Microsoft has announced what it calls a more privacy-friendly version of its Productivity Score enterprise feature, following backlash from security experts who condemned it as a “full-fledged workplace surveillance . . . Read more

Google Forms Abused to Phish AT&T Credentials

More than 200 Google Forms impersonate top brands – including Microsoft OneDrive, Office 365, and Wells Fargo – to steal victims’ credentials. Researchers are warning of phishing attacks that leverage Google Forms as a landing page to collect victims’ credentials. The forms masquerade as login pages from more than 25 different . . . Read more

Microsoft Teams Phishing Attack Targets Office 365 Users

Up to 50,000 Office 365 users are being targeted by a phishing campaign that purports to notify them of a “missed chat” from Microsoft Teams. Researchers are warning of a phishing campaign that pretends to be an automated message from Microsoft Teams. In reality, the attack aims to steal Office . . . Read more

Office 365: A Favorite for Cyberattack Persistence

The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the privacy policy. In addition, you will find them in the message confirming the subscription to the newsletter.

Microsoft Office 365 Phishing Attack Uses Multiple CAPTCHAs

The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the privacy policy. In addition, you will find them in the message confirming the subscription to the newsletter.